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BEST AVAILABLE COPY 

AMENDMENTS TO THE CLAIMS 
This listing of claims will replace all prior versions, and listings, of claims in the 

application: 

Listing of claims: 

! . (currently amended) A method for validating credentials comprising: 

determining, at a first system that grants session credentials based on successful 
authentication at the first system or successful authentication at a second system, that a client 
does not have a valid session credential granted by the first system; 

retrieving, at the first system, information from a session token held by the client, 
the information corresponding to a possible session credential for the second system that grants 
session credentials based on successful authentication at the second system; 

the first system presenting at least some of the information from the session 
token to the second system; and 

the first svstqm, determining whether the client has a valid session credential 
granted by the second system : and 

determining at ftp second system w hether th e client has a v ^ session credential 
granted hv the first system so as to authenticate at tha segpn^ gy^m 

2. (previously presented) A method according to claim 1, further comprising 
granting a session credential to the client by the first system, after determining that the client 
has a valid session credential granted by the second system. 

3, (previously presented) A method according to claim 1, further comprising 

sending a session token to the client, the token corresponding to a session credential granted by 

2 
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the first system* 

4. (previously presented) A method according to claim 1 , further comprising 
directing the client to the second system to establish a session credential based on successful 
authentication at the second system, after determining that the client does not have a valid 
session credential granted by the second system. 

5. (previously presented) A method according to claim 1 , further comprising 
directing the client to the first system to establish a session credential based on successful 
authentication at the first system, after determining that the client does not have a valid session 
credential granted by the second system, 

6. (previously presented) A method according to claim 1, further comprising 
maintaining the client session credential granted by the second system, 

7. (previously presented) A method according to claim 1 , wherein 
determining whether the client has a valid credential granted by the second system is at least 
partiidly from presenting at least some of the information from the session token, 

8. (original) A method according to claim 1, wherein retrieving information 
from the session token held by the client comprises: 

sending a query to the client from the first system, the query including 
identification as originating from a domain name corresponding to the second system; and 
receiving a response to the query. 

9. (currently amended) A method for validating session credentials of a 
client comprising: 

determining, at a first system that grants session credentials based on successful 

3 
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authentication at the first system or successful authentication at a second system, that a client 
does not have a valid session credential granted by the first system; 

retrieving, at the first system, information from a session token held by the client, 
the information corresponding to a session credential for the second system that grants session 
credentials based on successful authentication at the second system, wherein retrieving 
information from the session token held by the client comprises receiving a session token from 
the client corresponding to the second system; 

presenting at least some of the information from the session token to the second 

system; 

determining whether the client has a valid session credential granted by the 
second system, wherein determining whether the client has a valid credential granted by the 
second system is at least partially from presenting information from the session token; 

granting a session credential to the client on the first system, after determining 
that the client has a valid session credential granted by the second system; 

sending a session token to the client, the token corresponding to the session 
credential granted by the first system; and 

maintaining the client session credentials : and 

determining af fte second system w hether the client has a vftlid session credential 
granted by the first system, so p s to authenticate flf the second sy ste^. 

1 0. (currently amended) Computer executable software code stored on a 
computer-readable medium pnd transmits as an information signal, the code for validating 
credentials, the code comprising: 

4 
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code to determine, at a First system that grants session credentials based on 
successful authentication at the first system or successful authentication at a second system, that 
a client does not have a valid session credential granted by the first system; 

code to retrieve, at the first system, information from a session token held by the 
client, the information corresponding to a possible session credential for the second system that 
grants session credentials based on successful authentication at the second system; 

code to present at least some of the information from the session token to the 
second system; and 

code to determine whether the client has a valid session credential granted by the 
second svstei m_and 

, code to determine at the second syste m w hether the client has * valid se^jpn 

credential granted hv the first system, so as to authe n tje a ^e at the second system. 

1 1 . (currently amended) A computer readable medium having computer 
executable code stored thereon, the code for validating credentials, the code comprising: 

code to determine, at a first system that grants session credentials based on 
successful authentication at the first system or successful authentication at a second system, that 
a client does not have a valid session credential granted by the first system; 

code to retrieve, at the first system, information from a session token held by the 
client, the information corresponding to a possible session credential for the second system that 
grants session credentials based on successful authentication at the second system; 

code to present at least some of the information from the session token to the 
second system; and 

5 
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code to determine whether the client has a valid session credential granted by the 
second system : and 

code to determine at the second system Aether the client has a valid so ^j gp 
credential granted bv the first system, .so as fo amhftntiraifi at the semnrt system 

12. (currently amended) A programmed computer for validating 
credentials* comprising: 

a memory having at least one region for storing computer executable program 

code; and 

a processor for executing the program code stored in the memory, wherein the 
program code comprises: 

code to determine, at a first system that grants session credentials based on 
successful authentication at the first system or successful authentication at a second system, that 
a client does not have a valid session credential granted by the first system; 

code to retrieve, at the first system, information from a session token held by the 
client, the information corresponding to a possible session credential for the second system that 
grants session credentials based on successful authentication at the second system; 

code to present at least some of the information from the session token to the 
second system; and 

code to determine whether the client has a valid session credential granted by the 
second system : and 

code to determine at the seyppd system wh erfter the client has a , valid session 

credential granted bv the first system, so as to a uthenticate at the second system . 

6 
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13. (currently amended) A method for establishing session credentials 

comprising: 

determining that a client does not have a valid session credential granted by a 
first system based on successful authentication at the first system or successful authentication at 
a second system; 

determining that a client does not have a valid session credential granted by the 
second system based on successful authentication at the second system; 

sending, from the first system to the client, a log in page; 

receiving, at the first system from the client, log in information; 

sending, from the first system to the second system, the log in information; and 

receiving, at the first system from the second system, information corresponding 
to a session credential granted by the second system, the session credential granted by the 
second system based at least in part on the log in information and successful authentication at 
the second syste m: and 

dffermininr at the second system whether the client g valid session credeptj B ) 
granted bv the first system, so as to authent fate at th e second s^ pi. 

14. (previously presented) A method according to claim 13, further 
comprising granting a session credential for the first system. 

15. (previously presented) A method according to claim 13, further 
comprising granting a session credential for the second system. 

16. (previously presented) A method according to claim 13, further 

comprising associating session credentials for the first system and the second system with the 

7 
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client. 

17. (currently amended) A method for establishing session credentials 

comprising: 

determining that a client does not have a valid session credential granted by a 
first system based on successful authentication at the first system or successful authentication at 
a second system; 

determining that a client does not have a valid session credential granted by the 
second system based on successful authentication at the second system; 

sending, from the second system to the client, a log in page; 

receiving, at the second system from the client, log in information; and 

sending, from the second system to the first system, information corresponding 
to a session credential granted by the second system, the session credential granted by the 
second system based at least in part on the log in information and successful authentication at 
the second system; and 

granting a session credential for the first system^nd 

determining at the second system whefoer the client has a valid session credential 
granted hv the first syste m, so as to authenticate at the second system. 

18. (original) A method according to claim 17, further comprising granting a 
session credential for the second system. 

19. (original) A method according to claim 17, further comprising associating 
session credentials for the first system and the second system with the client. 

20. (currently amended) A method for validating credentials comprising: 

8 
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determining, at a first system that grants session credentials based on successful 
authentication at the first system or successful authentication at a second system, that a client 
does not have a valid session credential granted by the first system; 

redirecting the client to the second system that grants session credentials based 
on successful authentication at the second system; 

sending, from the second system to the first system, session credentials granted 
by the second system; 

sending, from the first system to the second system, the session credentials 
granted by the second system; 

determining, at the second system, that the session credentials granted by the 
second system, and received from the first system, are valid; and 

sending, from the second system to the first system, information indicating that 
the session credentials granted by the second system are vali d; and 

determining at rhft second system whether the client hqs a valid session credential 

granted hv thefirst system, so as to a uthenticate at the seennf j system 

2 1 . (original) A method according to claim 20, further comprising granting 
the client session credentials for the first system. 

22. (new) A method according to claim 1, wherein determining at the second 
system whether the client has a valid session credential granted by the first system, so as to 
authenticate at the second system Includes; 

determining, at a second system, which grants session credentials based on 

successful authentication at the second system or successful authentication at a first system, that 

9 
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a client does not have a valid session credential granted by the second system; 

retrieving, at the second system, information from a session token held by the 
client, the information corresponding to a possible session credential for the first system that 
grants session credentials based on successful authentication at the first system; 

the second system presenting at least some of the information from the session 
token to the first system; and 

the second system determining whether the client has a valid session credential 
granted by the first system. 



10 
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